Comment on YubiKeys are vulnerable to cloning attacks thanks to newly discovered side channel
USSEthernet@startrek.website 3 weeks agoWhich is why I’m now second guessing why I even bought them to begin with. Any time a security flaw is found I need to spend another $50-60. Seem crazy and wasteful.
jqubed@lemmy.world 3 weeks ago
Reading the article I think most people don’t need to worry about upgrading because of this flaw; this would be a very targeted attack. And I can understand not letting the firmware upgrade; I’m pretty sure I’ve seen examples of nation-state hacks for phones that involve attackers installing an “upgraded firmware” that disables security protections to access otherwise secured info. But yeah, cost is definitely a risk with this design.